Project Glasswing scans open-source code for vulnerabilities. But open source was already the most scrutinized software on earth. The real exposure is everywhere else ...

Thirteen critical vulnerabilities have been found in the vm2 JavaScript sandbox package that could allow an attacker’s code ...

CLI-Anything generates SKILL.md files that AI agents trust and execute. Snyk found 13.4% of agent skills contain critical ...

New research exposes how prompt injection in AI agent frameworks can lead to remote code execution. Learn how these ...

Flaws in OpenEMR's platform — used by more than 100,000 healthcare providers — enabled database compromise, remote code ...

A critical remote code execution and supply chain vulnerability was recently discovered by researchers in Gemini CLI.

It uses Opus 4.7 to scan, validate, and generate patches, helping fix dangerous flaws before they can be exploited.

Accelerated use of AI in software development is rapidly altering the scope, skills, and strategies involved in securing code ...

Microsoft-owned open source code hosting platform GitHub has acknowledged and patched a critical vulnerability that allowed ...

Six teams exploited Claude Code, Copilot, Codex, and Vertex AI in nine months. Every attack hit runtime credentials that IAM ...

OpenEMR is used by more than 100,000 medical providers, serving more than 200 million patients in 34 languages. While it is widely adopted in the United States, it also plays a significant role in ...

OpenAI releases GPT-5.5-Cyber with Trusted Access for Cyber, expanding controlled AI tools for advanced cybersecurity ...